Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/40ade0-98da-4aa5-b817-6edc1b225625/1/hoMplSm4p1E7CNiIjiFiQmSkjMU.roa
File: hoMplSm4p1E7CNiIjiFiQmSkjMU.roa (raw, json)
Hash identifier: LpR8iUOIaYY32pEDqErSAMog3H3fgI77SRybmeQYpYg=
Subject key identifier: 86:83:29:95:29:B8:A7:51:3B:08:D8:88:8E:21:62:42:64:A4:8C:C5
Certificate issuer: /CN=cfcd73f82c260da87386dcf7be26d5c5445526fa
Certificate serial: 061CFB75
Authority key identifier: CF:CD:73:F8:2C:26:0D:A8:73:86:DC:F7:BE:26:D5:C5:44:55:26:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z81z-CwmDahzhtz3vibVxURVJvo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/40ade0-98da-4aa5-b817-6edc1b225625/1/hoMplSm4p1E7CNiIjiFiQmSkjMU.roa
Signing time: Sat 01 Jan 2022 06:56:43 +0000
ROA not before: Sat 01 Jan 2022 06:56:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209669
IP address blocks: 2a09:d2c1:1::/48 maxlen: 48
2a09:d2c1:a::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102562677 (0x61cfb75)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfcd73f82c260da87386dcf7be26d5c5445526fa
Validity
Not Before: Jan 1 06:56:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8683299529b8a7513b08d8888e21624264a48cc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:21:18:68:9e:af:58:b5:c0:8a:e5:70:b6:ed:
6e:33:0a:52:ac:85:1a:c0:05:56:a8:03:7a:55:32:
61:77:0a:41:66:b5:1a:9d:9c:43:94:fe:f5:d9:13:
9d:54:09:d0:74:9e:0a:17:5b:13:60:16:59:40:12:
18:b4:4d:38:58:29:98:49:fa:70:57:1b:10:e3:76:
4f:24:df:5d:d3:65:b7:e4:a9:9e:5d:eb:43:41:13:
b2:14:d2:6b:ad:b6:33:a5:cc:d1:af:a7:53:06:ac:
41:4b:f4:10:1c:4d:52:31:5c:aa:eb:25:3e:13:09:
b2:07:21:1f:bc:27:75:a9:b9:57:5d:b8:00:dd:80:
63:48:fa:3b:d9:7a:ea:9d:d7:38:0b:91:1d:f7:bc:
f0:1a:b5:58:5e:61:89:ec:f0:d7:8c:53:1d:3b:3a:
56:6f:83:71:f5:35:4c:d0:bd:f3:a9:b2:b5:72:34:
9f:28:f8:e2:5d:d1:a2:fc:a4:e4:1d:96:8c:40:2a:
e1:79:4d:70:cd:6c:ad:7d:dd:31:17:06:16:e8:c3:
57:34:9a:3f:cc:6e:84:6c:b0:ff:72:5e:b7:1a:de:
60:87:3e:99:5b:ce:cd:d3:3e:16:7c:cd:2f:0b:fd:
b6:f3:35:e5:a2:3d:3a:8c:af:9e:a7:9e:1c:90:fd:
94:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:83:29:95:29:B8:A7:51:3B:08:D8:88:8E:21:62:42:64:A4:8C:C5
X509v3 Authority Key Identifier:
keyid:CF:CD:73:F8:2C:26:0D:A8:73:86:DC:F7:BE:26:D5:C5:44:55:26:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z81z-CwmDahzhtz3vibVxURVJvo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/40ade0-98da-4aa5-b817-6edc1b225625/1/hoMplSm4p1E7CNiIjiFiQmSkjMU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/40ade0-98da-4aa5-b817-6edc1b225625/1/z81z-CwmDahzhtz3vibVxURVJvo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:d2c1:1::/48
2a09:d2c1:a::/48
Signature Algorithm: sha256WithRSAEncryption
5b:39:02:48:46:41:90:5a:df:40:68:29:41:65:d0:40:44:c3:
9f:20:44:31:6a:48:24:c6:e4:12:14:9c:9e:c6:54:65:65:ba:
73:3f:87:cb:f7:9f:89:44:29:01:e7:26:51:48:b7:11:e6:a8:
18:af:b5:b7:7b:a5:33:93:63:34:01:9a:18:99:99:9d:07:72:
09:9b:41:11:b3:7d:a6:1f:08:fb:42:56:fd:8e:f5:ba:91:51:
71:08:b4:e1:8a:8f:73:a5:b1:0f:aa:c9:d9:c2:2f:77:bf:88:
50:98:9a:8e:53:ae:c1:d6:a1:81:05:5c:4e:04:89:ed:cd:20:
c3:0b:04:fb:32:d2:6f:07:3a:6a:63:99:1d:72:d7:a1:26:4f:
df:e2:b0:e8:0a:d2:65:a3:2f:dc:d1:59:47:f2:15:8a:24:8b:
04:37:7c:76:f9:2d:2e:73:7e:2c:2c:d0:3c:da:b3:a7:b9:02:
84:69:65:c9:56:0b:2a:c7:eb:c9:0d:41:59:9c:74:27:51:89:
dd:e7:42:4a:37:76:af:cb:ee:18:3a:ed:e7:b1:6f:51:97:b6:
6c:42:a7:e4:77:64:8d:cb:ac:af:33:00:4e:9f:18:e9:b2:36:
f1:76:4f:c5:07:b1:0b:ce:86:75:b4:7d:15:8a:91:24:70:fb:
30:2b:84:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:36 2024 by rpki-client on console-fra.rpki-client.org